CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-30477
https://notcve.org/view.php?id=CVE-2022-30477
26 May 2022 — Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetClientState request. Se ha detectado que el router Tenda AC Series AC18 versión V15.03.05.19(6318), contiene un desbordamiento de búfer en la región stack de la memoria en el módulo httpd cuando maneja una petición /goform/SetClientState • https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/4 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-30476
https://notcve.org/view.php?id=CVE-2022-30476
26 May 2022 — Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetFirewallCfg request. Se ha detectado que el router Tenda AC Series AC18 versión V15.03.05.19(6318), contenía un desbordamiento del búfer en la región stack de la memoria en el módulo httpd cuando manejaba una petición /goform/SetFirewallCfg • https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/6 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2022-30475
https://notcve.org/view.php?id=CVE-2022-30475
26 May 2022 — Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/WifiExtraSet request. Se ha detectado que el router Tenda AC Series AC18 versión V15.03.05.19(6318), contenía un desbordamiento del búfer en la región stack de la memoria en el módulo httpd cuando manejaba una petición /goform/WifiExtraSet • https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/3 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-30474
https://notcve.org/view.php?id=CVE-2022-30474
26 May 2022 — Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a heap overflow in the httpd module when handling /goform/saveParentControlInfo request. Se ha detectado que el router Tenda AC Series AC18 versión V15.03.05.19(6318), contenía un desbordamiento de la pila en el módulo httpd cuando manejaba una petición /goform/saveParentControlInfo • https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/5 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-30472
https://notcve.org/view.php?id=CVE-2022-30472
26 May 2022 — Tenda AC Seris Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function fromAddressNat El router de la serie AC de Tenda AC18 versión V15.03.05.19(6318), presenta una vulnerabilidad de desbordamiento del búfer en la región stack de la memoria en la función fromAddressNat • https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/1 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2022-30473
https://notcve.org/view.php?id=CVE-2022-30473
26 May 2022 — Tenda AC Series Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function form_fast_setting_wifi_set El router Tenda AC Series AC18 versión V15.03.05.19(6318), presenta una vulnerabilidad de desbordamiento de búfer en la región stack de la memoria en la función form_fast_setting_wifi_set • https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/2 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 2%CPEs: 4EXPL: 0CVE-2020-24987
https://notcve.org/view.php?id=CVE-2020-24987
04 Sep 2020 — Tenda AC18 Router through V15.03.05.05_EN and through V15.03.05.19(6318) CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck() function in /usr/lib/lua/ngx_authserver/ngx_wdas.lua file if the administrator UI Interface is set to "radius". El enrutador Tenda AC18 versiones hasta V15.03.05.05_EN y versiones hasta V15.03.05.19(6318), los dispositivos CN podrían causar una ejecución remota de código debido a un manejo de autenticación incorrecto de la... • https://cwe.mitre.org/data/definitions/287.html • CWE-287: Improper Authentication •
CVSS: 9.8EPSS: 2%CPEs: 10EXPL: 1CVE-2020-13389
https://notcve.org/view.php?id=CVE-2020-13389
22 May 2020 — An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/openSchedWifi schedStartTime and schedEndTime parameters for a POST request, a value is directly used in a strcpy to a local variable placed on the stack, which overwrites the return address of a funct... • https://joel-malwarebenchmark.github.io • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.8EPSS: 2%CPEs: 10EXPL: 2CVE-2020-13390
https://notcve.org/view.php?id=CVE-2020-13390
22 May 2020 — An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/addressNat entrys and mitInterface parameters for a POST request, a value is directly used in a sprintf to a local variable placed on the stack, which overwrites the return address of a function. An at... • https://joel-malwarebenchmark.github.io • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.8EPSS: 2%CPEs: 10EXPL: 2CVE-2020-13391
https://notcve.org/view.php?id=CVE-2020-13391
22 May 2020 — An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/SetSpeedWan speed_dir parameter for a POST request, a value is directly used in a sprintf to a local variable placed on the stack, which overwrites the return address of a function. An attacker can con... • https://joel-malwarebenchmark.github.io • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •